fix: Allow testing API keys without saving first

- Add optional apiKey parameter to verifyClaudeAuth endpoint - Backend uses provided key when available, falls back to stored key - Frontend passes current input value to test unsaved keys - Add input validation before testing 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-30 06:12:03 +00:00 · 2025-12-29 21:39:59 +01:00
parent 6c3d3aa111
commit fa23a7b8e2
4 changed files with 46 additions and 17 deletions
--- a/apps/server/src/routes/setup/routes/verify-claude-auth.ts
+++ b/apps/server/src/routes/setup/routes/verify-claude-auth.ts
@@ -71,10 +71,15 @@ function containsAuthError(text: string): boolean {
 export function createVerifyClaudeAuthHandler() {
  return async (req: Request, res: Response): Promise<void> => {
    try {
-      // Get the auth method from the request body
-      const { authMethod } = req.body as { authMethod?: 'cli' | 'api_key' };
+      // Get the auth method and optional API key from the request body
+      const { authMethod, apiKey } = req.body as {
+        authMethod?: 'cli' | 'api_key';
+        apiKey?: string;
+      };

-      logger.info(`[Setup] Verifying Claude authentication using method: ${authMethod || 'auto'}`);
+      logger.info(
+        `[Setup] Verifying Claude authentication using method: ${authMethod || 'auto'}${apiKey ? ' (with provided key)' : ''}`
+      );

      // Create an AbortController with a 30-second timeout
      const abortController = new AbortController();
@@ -94,14 +99,17 @@ export function createVerifyClaudeAuthHandler() {
          delete process.env.ANTHROPIC_API_KEY;
          logger.info('[Setup] Cleared API key environment for CLI verification');
        } else if (authMethod === 'api_key') {
-          // For API key verification, ensure we're using the stored API key
-          const storedApiKey = getApiKey('anthropic');
-          if (storedApiKey) {
-            process.env.ANTHROPIC_API_KEY = storedApiKey;
-            logger.info('[Setup] Using stored API key for verification');
+          // For API key verification, use provided key, stored key, or env var (in order of priority)
+          if (apiKey) {
+            // Use the provided API key (allows testing unsaved keys)
+            process.env.ANTHROPIC_API_KEY = apiKey;
+            logger.info('[Setup] Using provided API key for verification');
          } else {
-            // Check env var
-            if (!process.env.ANTHROPIC_API_KEY) {
+            const storedApiKey = getApiKey('anthropic');
+            if (storedApiKey) {
+              process.env.ANTHROPIC_API_KEY = storedApiKey;
+              logger.info('[Setup] Using stored API key for verification');
+            } else if (!process.env.ANTHROPIC_API_KEY) {
              res.json({
                success: true,
                authenticated: false,
--- a/apps/ui/src/components/views/settings-view/api-keys/hooks/use-api-key-management.ts
+++ b/apps/ui/src/components/views/settings-view/api-keys/hooks/use-api-key-management.ts
@@ -69,12 +69,22 @@ export function useApiKeyManagement() {

  // Test Anthropic/Claude connection
  const handleTestAnthropicConnection = async () => {
+    // Validate input first
+    if (!anthropicKey || anthropicKey.trim().length === 0) {
+      setTestResult({
+        success: false,
+        message: 'Please enter an API key to test.',
+      });
+      return;
+    }
+
    setTestingConnection(true);
    setTestResult(null);

    try {
      const api = getElectronAPI();
-      const data = await api.setup.verifyClaudeAuth('api_key');
+      // Pass the current input value to test unsaved keys
+      const data = await api.setup.verifyClaudeAuth('api_key', anthropicKey);

      if (data.success && data.authenticated) {
        setTestResult({
--- a/apps/ui/src/lib/electron.ts
+++ b/apps/ui/src/lib/electron.ts
@@ -537,7 +537,10 @@ export interface ElectronAPI {
      isMac: boolean;
      isLinux: boolean;
    }>;
-    verifyClaudeAuth: (authMethod?: 'cli' | 'api_key') => Promise<{
+    verifyClaudeAuth: (
+      authMethod?: 'cli' | 'api_key',
+      apiKey?: string
+    ) => Promise<{
      success: boolean;
      authenticated: boolean;
      error?: string;
@@ -1118,7 +1121,10 @@ interface SetupAPI {
    isMac: boolean;
    isLinux: boolean;
  }>;
-  verifyClaudeAuth: (authMethod?: 'cli' | 'api_key') => Promise<{
+  verifyClaudeAuth: (
+    authMethod?: 'cli' | 'api_key',
+    apiKey?: string
+  ) => Promise<{
    success: boolean;
    authenticated: boolean;
    error?: string;
@@ -1208,8 +1214,12 @@ function createMockSetupAPI(): SetupAPI {
      };
    },

-    verifyClaudeAuth: async (authMethod?: 'cli' | 'api_key') => {
-      console.log('[Mock] Verifying Claude auth with method:', authMethod);
+    verifyClaudeAuth: async (authMethod?: 'cli' | 'api_key', apiKey?: string) => {
+      console.log(
+        '[Mock] Verifying Claude auth with method:',
+        authMethod,
+        apiKey ? '(with key)' : ''
+      );
      // Mock always returns not authenticated
      return {
        success: true,
--- a/apps/ui/src/lib/http-api-client.ts
+++ b/apps/ui/src/lib/http-api-client.ts
@@ -491,12 +491,13 @@ export class HttpApiClient implements ElectronAPI {
    }> => this.get('/api/setup/platform'),

    verifyClaudeAuth: (
-      authMethod?: 'cli' | 'api_key'
+      authMethod?: 'cli' | 'api_key',
+      apiKey?: string
    ): Promise<{
      success: boolean;
      authenticated: boolean;
      error?: string;
-    }> => this.post('/api/setup/verify-claude-auth', { authMethod }),
+    }> => this.post('/api/setup/verify-claude-auth', { authMethod, apiKey }),

    getGhStatus: (): Promise<{
      success: boolean;